CVE-2009-0840

Publication date 31 March 2009

Last updated 24 July 2024


Ubuntu priority

Heap-based buffer underflow in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to have an unknown impact via a negative value in the Content-Length HTTP header.

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
mapserver 9.10 karmic
Not affected
9.04 jaunty
Fixed 5.0.3-3ubuntu0.1
8.10 intrepid
Fixed 5.0.3-2ubuntu0.1
8.04 LTS hardy
Fixed 5.0.0-3ubuntu0.1
7.10 gutsy Ignored end of life, was needed
6.06 LTS dapper Ignored end of life